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CLAIMS 

What is claimed is: 

1 1 . A method for providing network security, comprising the steps 

2 of: 

3 receiving a plurality of network protocol packets, wherein 

4 a network protocol packet includes a network protocol header 
^ 5 and a plurality of network protocol data, and wherein the 

6 network protocol data include a first cryptographic protocol 

]S 7 header and a first plurality of encrypted data; 

CP 8 determining a first plurality of cryptographic protocol rules 

]* 9 associated with the network protocol data; 

0 1 0 establishing a cryptographic session, if required by said 

[7? 1 1 first cryptographic rules; 

O 1 2 applying the first plurality of cryptographic protocol rules 

r " 1 3 to the first encrypted data to obtain a first plurality of cleartext 

14 data; 

1 5 translating the first plurality of cleartext data into a second 

1 6 plurality of cleartext data in accordance with at least one 

17 translation rule; and 

1 8 encrypting the second plurality of cleartext data in 

1 9 accordance with at least one rule associated with a second 

20 cryptographic protocol, resulting in a second plurality of 

21 encrypted data. 

1 2. A system for providing network security, comprising: 
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2 an input module for receiving a plurality of network 

3 protocol packets; 

4 a translation module for translating a first plurality of data 

5 into a second plurality of data; 

6 an output module; and 

7 a cryptographic module responsive to the input module 

8 and the output module for performing cryptographic operations. 

1 3. A system for providing network security, comprising: 

2 means for receiving a request to perform a cryptographic 

3 operation; 

4 means for returning a response to the cryptographic 

5 operation request; 

6 at least one module for performing said cryptographic 

7 operations. 

1 4. The method of claim 1 , wherein the at least one translation rule 

2 is predetermined. 

1 5. The method of claim 1 , wherein the at least one translation rule 

2 is determined dynamically. 

1 6. The method of claim 1 , wherein the first cryptographic protocol 

2 is WTLS. 

1 7. The method of claim 1 , wherein the first plurality of encrypted 

2 data is associated with WML. 

1 8. The method of claim 1 , wherein second plurality of encrypted 

2 data is associated with HTML. 
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1 9. The method of claim 1 , wherein the second cryptographic 

2 protocol is SSL over HTTP. 

1 1 0. The method of claim 1 , wherein the first cryptographic protocol 

2 and the second cryptographic protocol are identical. 

1 11. The method of claim 1 , wherein the first plurality of encrypted 

2 data and the second plurality of encrypted data conform to 

3 different revisions of a specification for the same cryptographic 

4 protocol. 

1 12. The system of claim 3, wherein at least one cryptographic 

2 module is a cryptographically strong pseudorandom number 

3 generator. 

1 1 3. The system of claim 3, wherein the cryptographic operations are 

2 performed using cryptographic acceleration hardware. 

1 1 4. The system of claim 1 3, wherein the cryptographic acceleration 

2 hardware includes a plurality of individual hardware acceleration 

3 units. 

1 1 5. The system of claim 1 4, wherein at least one individual 

2 hardware acceleration unit is dedicated to one function. 

1 1 6. The system of claim 1 3, wherein the cryptographic acceleration 

2 hardware is updateable by loading at least one cryptographically 

3 signed instruction. 

1 1 7. The system of claim 1 3, wherein the cryptographic acceleration 

2 hardware is tamper-resistant. 

1 1 8. The system of claim 1 3, wherein the cryptographic acceleration 

2 hardware is tamper-evident. 
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